26 to 50 of 194 Incident Response Jobs in the UK excluding London

visibility and enhance the overall security posture. Key Responsibilities: Implement, configure and optimise core security tooling across the environment Enhance threat detection, monitoring and response capabilities Investigate security alerts and support incident response activities Improve integration and automation between security platforms Support vulnerability management and remediation processes … vulnerability management platforms such as Tenable Knowledge of OT/ICS security monitoring platforms such as Claroty Experience supporting security monitoring, detection engineering and incident response Strong understanding of enterprise infrastructure and cloud security ...

visibility and enhance the overall security posture. Key Responsibilities: Implement, configure and optimise core security tooling across the environment Enhance threat detection, monitoring and response capabilities Investigate security alerts and support incident response activities Improve integration and automation between security platforms Support vulnerability management and remediation processes … management platforms such as Tenable Knowledge of OT/ICS security platforms such as Claroty is beneficial Experience supporting security monitoring, detection engineering and incident response Strong understanding of enterprise infrastructure and cloud security Reasonable Adjustments: Respect and equality are core values to us. We are proud ...

/7 SOC services across multiple platforms and projects. You will lead and support a small team of analysts, oversee security monitoring and incident response, and contribute to the development of security controls, processes and governance. You will work closely with senior stakeholders to produce security reporting, support … technical work and mentoring others. Senior SOC Analyst essential skills Proven experience working within a SOC environment, ideally 3+ years Strong knowledge of SIEM, incident management and threat intelligence Experience with cloud security, networking and information security principles Understanding of IDAM, RBAC and joiners, movers and leavers processes Ability ...

safeguarding of the organisation's information assets by identifying risks, monitoring security controls, and ensuring best-practice governance. The role also contributes to incident response, third-party oversight, and ongoing security improvements. It is a hybrid role with 40% working from home. You can choose to work … Perform due-diligence reviews of third-party suppliers and support ongoing monitoring of external security risks. Profile Experience in information security, risk assessment, and incident response within a regulated or structured environment. Familiarity with security monitoring tools, vulnerability management, and supporting audit activities. Understanding of security frameworks such ...

Analyst (Tier 2) to support their security operations function. This role will focus on investigating security incidents, improving detection capabilities and supporting the wider incident response process. Key Responsibilities: Investigate and respond to security alerts and incidents Perform threat analysis and incident investigation Analyse security logs … understanding of security threats, vulnerabilities and attack techniques Hands-on experience with SIEM platforms (Splunk, Sentinel, QRadar, Elastic) Knowledge of endpoint security tools and incident response processes Strong analytical and investigative skills Nice to Have: Experience with CrowdStrike, SentinelOne or Microsoft Defender Knowledge of MITRE ATT&CK framework ...

stakeholder input for operational excellence Ensure SLA compliance, lead governance, and implement corrective actions as needed Coordinate NOC processes including escalation, event monitoring, and incident response to maintain service stability Support Vendor Partnership Manager (e.g., Oracle) Drive continuous improvement using data, feedback, and industry trends to streamline service … delivery Lead major incident response and escalation, ensuring rapid resolution and clear communication across teams Conduct problem management and root cause analysis, implementing lasting solutions and reducing incidents Analyse ticket data to uncover opportunities for automation and process improvements Deliver comprehensive reports on KPIs, SLAs, incident trends ...

approximately 80% cyber security and 20% network-related responsibilities. You will take a proactive, strategic approach to safeguarding information assets, managing cyber risks, leading incident response, and driving continual improvement in our security and network posture. Key responsibilities include: Developing and maintaining security strategies, policies, standards, and procedures … risk management, vulnerability remediation, patch management (soon transitioning to a third-party provider-opportunity to put your stamp on processes), and supplier compliance. Overseeing incident management, coordinating audits, penetration testing (third-party delivered, but you will shape scoping and remediation), and contributing to disaster recovery/business continuity. Mentoring ...

regions. Key Responsibilities Lead the design and implementation of secure authentication, authorisation, and data protection frameworks. Manage and enhance Data Loss Prevention (DLP) systems, incident response, and risk management processes. Oversee cloud security architecture across Azure, O365, and iManage Cloud environments. Collaborate with global IT, compliance, and risk … information security within a global enterprise environment . Strong knowledge of cloud and network security (Azure, O365). Experienced in DLP, SIEM, and incident response processes. Familiar with ISO 27001/27002 and governance frameworks. CISSP or CEH certification preferred. Excellent communication, stakeholder management, and documentation skills. ...

technical engine behind the organisation's global digital integrity. Your responsibilities will include: Managing the Global SOC to ensure proactive threat hunting and rapid incident response across all global time zones. Implementing a cutting-edge DevSecOps approach to ensure security is automated and embedded within the CI/… have personally achieved certification from scratch) 2.DevSecOps (Embedding security into CI/CD pipelines and automated workflows) 3.SOC Management (Overseeing global threat detection and incident response) 4.NIST Framework (Applying security standards for the Americas region) 5.Essential 8 (Understanding and implementing Australian security protocols) 6.Vulnerability Management (Coordinating risk-based ...

security operations at a pivotal moment in a regulated organisations cyber journey. This role puts you right at the centre of strengthening detection, response, and operational resilienceshaping how a modern security operations capability performs day to day. You will be based in London 2 days per week, working from … external security providers Exposure to advanced security tooling including Microsoft Sentinel and wider Microsoft security technologies The chance to drive operational improvements across incident response, detection, and governance A highly competitive day rate within a financially regulated environment where cyber security is taken seriously What youll be getting ...

practical learning, and shaping the next generation of defence cyber capability. Key Responsibilities Training Delivery & Subject Matter Expertise Deliver high-quality cyber security and incident response training to learners with varying experience levels. Translate real-world cyber operations, threat analysis, and incident handling into clear, practical instruction. … competence. Key Skills & Experiences Live SC Clearance Strong hands-on knowledge of cyber threats, network security, risk management, and compliance frameworks. Deep understanding of incident response methodologies, detection, investigation techniques and tooling. Ability to communicate complex technical concepts in a clear, engaging and learner-friendly manner. Experience designing ...

expertise and a passion for delivering safe, secure, and reliable critical infrastructure services. You will play a key role in ensuring operational continuity, driving incident response, supporting service delivery, and maintaining compliance across complex datacentre environments. Responsibilities: Data Centre Operations: Ensure full compliance with datacenter policies, safety standards … tasks and projects in collaboration with cross-functional technical teams. Manage operational programs and contribute to Root Cause Analysis (RCA) processes. Lead or support incident response efforts for critical infrastructure failures, ensuring rapid recovery and minimal downtime. Identify risks in the critical environment and implement mitigation strategies. Manage ...

operations, and external security partners, you'll design and implement robust security controls while continuously improving resilience and reliability. You'll take ownership of incident response activities, proactively monitor threats, and drive improvements across vulnerability management and security tooling. Alongside day-to-day operational security, you'll contribute … firewalls, SIEM platforms, endpoint protection, and vulnerability management tools Experience securing both cloud-based and on-premise environments A solid background in security incident response and investigation Experience working with third-party security vendors or managed service providers The ability to communicate technical security concepts clearly ...

level of proficiency in forensically acquiring, preserving, and analysing digital evidence across a variety of platforms to support internal investigations, e-discovery, litigation, and incident response efforts. The Principal Analyst will also take a lead role in complex cases, develop forensic methodologies, and mentor other team members. This … senior business stakeholders. Research and implement emerging forensic tools and methodologies to enhance investigation capabilities and maintain operational excellence. Collaborate with the Cyber Security Incident Response Team to provide rapid forensic support during live cybersecurity incidents. Experience required: Proven Digital Forensics experience operating at a senior/lead ...

Responsibilities Engineer Configure & maintain Akamai tools (KSD, WAF, Bot Manager, CDN) Support implementation of rulesets, policies & routing configs Monitor traffic, identify threats & assist in incident response Tune WAF & bot rules to reduce false positives Assist with CDN configuration, caching & performance tuning Manage certificates, redirects, and Akamai property updates … Engineer Architect, configure & optimise Akamai tools (KSD, WAF, Bot Manager, CDN) Lead end-to-end policy and ruleset implementation Conduct threat analysis, log review & incident response Implement rate limiting, DDoS protection & bot mitigation Manage Akamai properties, certificates, redirects & routing Tune WAF rules to reduce false positives Provide technical ...

QA. Strengthen code review standards and engineering consistency. Within 12 months, you will: Confidently contribute to UK and Global teams based on priority. Lead incident response efforts when front-end issues affect production. Influence front-end architectural decisions. Raise the overall quality bar across our Vue/Nuxt … ensure implementation aligns with inclusive design principles. Technical Leadership: Conduct code reviews, guide architectural decisions, and raise engineering standards across the front-end codebase. Incident Response: Lead investigations and resolution efforts during critical production incidents, ensuring fast and structured recovery. Collaboration: Work closely with Product, Design ...

QA. Strengthen code review standards and engineering consistency. Within 12 months, you will: Confidently contribute to UK and Global teams based on priority. Lead incident response efforts when front-end issues affect production. Influence front-end architectural decisions. Raise the overall quality bar across our Vue/Nuxt … ensure implementation aligns with inclusive design principles. Technical Leadership: Conduct code reviews, guide architectural decisions, and raise engineering standards across the front-end codebase. Incident Response: Lead investigations and resolution efforts during critical production incidents, ensuring fast and structured recovery. Collaboration: Work closely with Product, Design ...

Security Practices, Level 2) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills ...

Security Practices, Level 2) equips you with the practical skills employers in Greater Manchester are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast-growing cyber security and IT roles. … security principles. Threat Intelligence: Develop expertise to identify risks and analyze threats. Vulnerability Testing: Conduct cyber security testing, identify vulnerabilities, and implement controls. Incident Response: Prepare for and respond to live cyber security incidents. Ethics & Law: Understand legislation and ethical conduct within the cyber security sector. Professional Skills ...

Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you ll gain hands-on experience that prepares you for today s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

Certificate in Cyber Security Practices, Level 2) equips you with the practical skills employers are actively seeking. From threat intelligence and security testing to incident response and ethical compliance, you’ll gain hands-on experience that prepares you for today’s fast-growing cyber security and IT roles. … Understand cyber security principles and core frameworks Threat Intelligence: Develop expertise to identify risks Testing: Conduct cyber security testing, identify vulnerabilities and implement controls Incident Response: Prepare for and respond to cyber security incidents Ethics: Understand legislation and ethical conduct within cyber security Professional Skills: Build professional skills ...

Systems Engineer you will act as the vital link between operations, end users and backend development teams, ensuring system availability, performance optimisation and effective incident management across live environments. This Site Reliability Engineer/Systems Engineer role offers the chance to work with modern cloud technologies, containerisation, observability tools … your next career move? Apply Now for our Recruitment Team to review. DUTIES Your duties as the Site Reliability Engineer/Systems Engineer include: Incident Triage and Ownership: Acting as first-line technical escalation for live production issues through to resolution or handover System Monitoring and Availability: Maintaining high ...

incidents on critical client infrastructure. Perform in-depth analysis of network traffic, logs, and system events to identify potential security threats and vulnerability Provide Incident Response support when required, providing guidance on containment, eradication and recovery activities. Maintain and, where appropriate, improve and develop team knowledge … Work as part of a team to ensure that corporate data and technology platform components are safeguarded from known threats. Maintain and update security incident documentation, including incident reports, analysis findings, and recommended mitigation strategies. Input into threat intelligence activities when required. Represent the SOC within Stakeholders meetings ...

worldwide team that is empowered to operate the activities within their assigned function. Daily activities will focus heavily on request, event and incident management and direction will be provided by the Information Security Manager. Norton Rose Fulbright is committed to the professional development of its staff. There will … such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security Hub), and cloud compliance frameworks (e.g., CIS, CSA CCM) is highly ...

such as , Zscaler, Mimecast, Proofpoint, or Cisco. Experience with securing cloud environments (AWS, Azure, GCP), including configuration management, identity and access controls, monitoring, and incident response. * Familiarity with cloud security tools (e.g., Microsoft Defender for Cloud, AWS Security Hub), and cloud compliance frameworks (e.g., CIS, CSA CCM) is highly … desirable. * Experience with security automation and orchestration, including the use of scripting languages (such as PowerShell or Python) and SOAR platforms to streamline incident response, automate repetitive tasks, and enhance overall security operations. * Strong knowledge of security technologies (e.g., firewalls, IDS/IPS, EDR, SIEM) * Technical bachelor ...